General Topics

URL filtering

hi all,

I am trying to configure Palo alto's URL filtering for allowing user to access web site like mappy. Problem is mappy make request to other web site for displaying photos and others ....

Do you know if it's possible to create a rule using a crit

SSL-VPN: Unable to receive vpn status from service

We have a problem to connect a client with Mac OSX v.10.6.6 with netconnect: Error message: Unable to receive vpn status from service.

In the FW we can see that vpn client configuration is generated successfully: slvpn-config-succ  SSL VPN client conf

trying to export CSV getting 'Error in data download: Error in parsing xml response.'

Hi,

I hope this is the right place to ask this.

I've been exporting some filetered logs to look at in Excel. This was working fine for a while, but now whatever I export, the file I'm saving (e.g. exportLog.csv) just contains "Error in data download: E

strip off the domain for authentication with a captive portal?

Hello,

I want know if it's possible to  strip off  the domain for authentication with a captive portal?

I use PAn-AGENT  With My captive portal and I want not enter my login with domain\user but just user.

thanks for your help,

Alexandre

What causes an HA Primary to go into Suspended State?

I've setup an HA Pair with Primary Priority of 10 and a secondary of 20 (both with Pre-empt enabled).

The Primary keeps going into Suspended state.. what would cause this?

question about Thermal Chamber test result and VPNC

Hello all.

would somebody tell me where I can find out Thermal Chamber test result for the PA product?

plus. we're not enlisted on the VPNC testing product list.

do we have plan to get certify on this?

http://www.vpnc.org/testing.html

thank you very much.

About server virtualization (vmware esx) question.

Hello.

When using server vitualization environment (vmware esx) can PA inspection traffic as a vm instance from internal vm servers?

I checked application named vmware at PA device but guess it is only related vmware traffic for management. right?

Pleas

SSL VPN Client Compatibility

We have a customer using SSLVPN for users and 3rd-party peers.

A 3rd party of theirs is using the SSL VPN client. It doesn't seem to work when co-existing on a PC with other clients on it (Cisco, Checkpoint and others) but does work if it's the only c

Managing policy with Panorama - what is best practice?

We are looking at deploying multiple firewall instances managed centrally by Panorama, and would like to maintain a global baseline policy across all of them.

We recognize that regional instances will have specific local policy requirements not shared

Panorama - Master device

Hi,

could anyone tell me what does really mean the voice "Master Device" in device group configuration in Panorama?

Unfortunately the only documentation about this says:

"[...] select a master

device from which the user information will be retrieved from

file blocking(file types) question.

hello all.

quick question.

in the File Blocking -> File types, probably we don't support "txt or text" extention as a supported file types..do we have any specific reason for this?

but  when it comes to Data Filtering, there is "text/html" File Types th

Captive portal not requiring password with user id

Hi,

We've implemented a PA4020 box in a v-wire configuration with another jack on the box configured as an L3 in order to have captive portal functionality. The reason is that there are multiple computers that are logged in to with generic accounts, a

Issue creating multiple DMZs with layer3 interfaces

I have an issue with getting 2 DMZs working in layer 3 mode on Palo Alto version 3.1.7.

I have set up my first DMZ and can communicate perfectly with the internal network. When I setup a second dmz (using completely different interface ports), but exa